Search
Keyword: JS_JSSHELL
Other Details This Trojan does the following: Displays the following pop-up message once executed: This script is used by other FAKEAV variants for their malicious routines. Displays message/message
This Trojan may be unknowingly downloaded by a user while visiting malicious websites. It redirects browsers to certain sites. Arrival Details This Trojan may be unknowingly downloaded by a user
This Trojan may be unknowingly downloaded by a user while visiting malicious websites. It may be hosted on a website and run when a user accesses the said website. Once a compromised site is visited,
As of this writing, the said sites are inaccessible. Download Routine As of this writing, the said sites are inaccessible. Other Details This Trojan connects to the following possibly malicious URL:
This Trojan executes when a user accesses certain websites where it is hosted. However, as of this writing, the said sites are inaccessible. It redirects browsers to certain sites. Arrival Details
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be hosted on a website and run when a user
Trend Micro has flagged this malicious JavaScript as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. To get a one-glance comprehensive view of the
This Trojan drops the files. Installation This Trojan creates the following folders: C:\Documents and Settings\All Users\Application Data\adhhh Dropping Routine This Trojan drops the following files:
However, as of this writing, the said sites are inaccessible. It inserts an IFRAME tag that redirects users to certain URLs. Backdoor Routine However, as of this writing, the said sites are
This Trojan may be hosted on a website and run when a user accesses the said website. As of this writing, the said sites are inaccessible. Once a compromised site is visited, the user is redirected
This Trojan may be hosted on a website and run when a user accesses the said website. This is the Trend Micro detection for Web pages that were compromised through the insertion of a certain
This Trojan may be hosted on a website and run when a user accesses the said website. It redirects browsers to certain sites. Arrival Details This Trojan may be hosted on a website and run when a
This Trojan executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system. Download Routine This Trojan accesses the following websites
However, as of this writing, the said sites are inaccessible. Other Details This Trojan attempts to access the following websites to download files, which are possibly malicious: http://www.{BLOCKED
This Trojan may be dropped by other malware. Arrival Details This Trojan may be dropped by the following malware: TROJ_HILOTI.EP NOTES: This javascript may be used to monitor browser activities in
This Trojan may arrive bundled with malware packages as a malware component. It executes when a user accesses certain websites where it is hosted. It may be hosted on a website and run when a user
This Trojan may be hosted on a website and run when a user accesses the said website. As of this writing, the said sites are inaccessible. Once a compromised site is visited, the user is redirected
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. However, as of this writing, the said sites are inaccessible. Arrival Details This Trojan
This Trojan may be downloaded by other malware/grayware/spyware from remote sites. It may be hosted on a website and run when a user accesses the said website. This is the Trend Micro detection for
This JavaScript has received attention from independent media sources and/or other security firms. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram